Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/1d8251-2825-4730-9f49-8b35b672fa83/1/JAKer9OTKLE293kklFpBv0FWHGI.roa
File: JAKer9OTKLE293kklFpBv0FWHGI.roa (raw, json)
Hash identifier: wSlqxG8Kw41j0CuGG5cLCsgOXj7GbYOkK4ngbNd/vpI=
Subject key identifier: 24:02:9E:AF:D3:93:28:B1:36:F7:79:24:94:5A:41:BF:41:56:1C:62
Certificate issuer: /CN=8f5c74bf6cf80099e6415f6dfe183416c0867e22
Certificate serial: 0183274170828DF2DB8CFDB17483BC23483E
Authority key identifier: 8F:5C:74:BF:6C:F8:00:99:E6:41:5F:6D:FE:18:34:16:C0:86:7E:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j1x0v2z4AJnmQV9t_hg0FsCGfiI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/1d8251-2825-4730-9f49-8b35b672fa83/1/JAKer9OTKLE293kklFpBv0FWHGI.roa
Signing time: Sat 10 Sep 2022 11:55:43 +0000
ROA not before: Sat 10 Sep 2022 11:55:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204957
IP address blocks: 94.142.255.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:27:41:70:82:8d:f2:db:8c:fd:b1:74:83:bc:23:48:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f5c74bf6cf80099e6415f6dfe183416c0867e22
Validity
Not Before: Sep 10 11:55:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=24029eafd39328b136f77924945a41bf41561c62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ef:df:05:80:a4:e9:3a:09:39:f7:1c:46:57:
10:ae:28:1c:bd:83:f2:08:1d:e0:7e:84:5d:cb:d4:
7f:7c:dc:bb:17:5d:40:65:57:53:ef:c2:ef:a9:00:
55:a5:72:0a:9e:58:b2:32:17:aa:32:5c:34:07:a5:
8f:3c:92:e9:21:7b:89:46:a6:f9:78:7f:e7:2a:51:
fa:0f:b6:30:90:06:2f:4a:5a:24:62:81:a9:a2:4f:
68:f4:b4:42:d7:e8:c8:ae:b7:6c:6a:c7:2a:31:ac:
ee:9b:7d:c5:e1:b3:7b:45:4f:18:52:9f:cf:a5:1a:
ee:63:ee:ce:6b:23:1b:cb:ea:dc:ec:41:e0:58:0a:
b6:79:89:51:ee:71:6b:b7:50:35:a7:7a:63:40:05:
c8:ac:9e:58:18:46:0d:af:bc:c0:62:c1:39:0b:f4:
5e:5f:26:ea:ce:80:b3:52:22:ac:38:3b:0d:6b:0d:
87:e3:28:bf:0d:3e:8b:92:81:ac:fe:84:b6:34:4c:
05:33:cb:b3:ab:25:79:ab:b3:36:54:70:9b:8a:66:
a2:a4:03:66:1f:31:f6:62:60:71:52:31:ab:b3:db:
32:97:d5:fe:64:bd:a6:c2:7f:e2:49:68:17:3e:22:
b8:ea:b5:e3:2f:d8:a9:64:0e:cb:c5:3d:0a:2f:07:
ed:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:02:9E:AF:D3:93:28:B1:36:F7:79:24:94:5A:41:BF:41:56:1C:62
X509v3 Authority Key Identifier:
keyid:8F:5C:74:BF:6C:F8:00:99:E6:41:5F:6D:FE:18:34:16:C0:86:7E:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j1x0v2z4AJnmQV9t_hg0FsCGfiI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/1d8251-2825-4730-9f49-8b35b672fa83/1/JAKer9OTKLE293kklFpBv0FWHGI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/1d8251-2825-4730-9f49-8b35b672fa83/1/j1x0v2z4AJnmQV9t_hg0FsCGfiI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.142.255.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:63:0e:8c:d7:90:bb:cc:51:90:75:63:b7:bb:18:e9:5b:da:
d0:aa:c2:dc:b0:a1:7a:97:1f:eb:7f:1d:08:83:f0:fd:6c:af:
c1:a5:81:03:6b:2d:24:ad:63:c6:7d:ea:12:bb:92:3d:65:53:
38:e8:f5:d2:a6:ad:54:cb:63:57:75:7e:30:ae:74:36:e9:8d:
bf:9a:80:79:00:14:e4:95:99:75:10:ec:45:b5:7b:ee:5d:9b:
4d:3e:9e:3b:4d:3e:db:74:26:83:ab:50:6e:e7:e3:f6:81:1a:
70:6a:c2:d8:b5:07:85:07:ab:4b:38:3d:f8:c4:69:fa:1e:9d:
3f:94:b2:67:08:d8:eb:97:98:ea:d9:49:a9:ed:c9:64:c8:35:
a7:1d:e4:1a:f9:2f:6e:29:c9:c5:69:e2:f3:cf:ec:4a:61:70:
06:13:9d:81:b0:f2:54:16:bc:91:b3:eb:04:66:91:b7:eb:2b:
bb:d8:6a:cf:34:e5:70:f8:c8:60:28:b3:77:99:7c:2c:8b:05:
c6:2f:8b:48:c2:92:15:f3:27:58:be:14:59:1a:32:44:70:bd:
40:4d:a1:3a:81:43:d3:9b:ea:62:bf:a1:1a:b5:7b:08:95:1f:
d7:e3:90:74:da:b8:07:17:eb:2c:f2:f1:88:50:8d:29:cf:5f:
48:d6:8a:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:12 2024 by rpki-client on console-fra.rpki-client.org